In this episode of Full Disclosure we are explaining the website attack known as Cross-Site Scripting (XSS). Cross-Site Scripting is a type of security vulnerability that affects web applications that do not sanitize user input properly. This kind of vulnerability allows an "attacker" to inject HTML or client side script like JavaScript into the website. Cross-Site Scripting is most commonly used to steal cookies. Cookies are used for authenticating, tracking, and maintaining specific information about users; therefore, by stealing a user's cookies an attacker could bypass the website's access control. There are three types of XSS attacks: Persistent, Non-Persistent, and DOM-Based. In this episode we will cover Persistent and Non-Persistent Cross-Site Scripting attacks.

Please enable JavaScript to watch this video.

Please enable JavaScript to watch this video.

(1) Part 1 of 2 - How to Hack websites using cross-site scripting (XSS), (2) Part 2 of 2 - How to Hack websites using cross-site scripting (XSS)

13 Comments

hii guy's ur amazing :Dreally i respect guy's like u so be4 8 monthes i was hacking hotmail accounts by xss but now amtring to do it again but i can't ...looool so guy's if u have any details for hacking hotmail or facebook .... cnnect me on mattt2002@hotmail.com i think soon iwill find a new way to hack hotmail with xss nice work guy's .... rock on \m/